646b892680
Some checks failed
Periodic Merges (6h) / master → staging-nixos (push) Failing after 12m50s
Periodic Merges (6h) / master → staging-next (push) Failing after 12m54s
Periodic Merges (24h) / merge-base(master,staging) → haskell-updates (push) Failing after 11m54s
Periodic Merges (6h) / staging-next → staging (push) Failing after 12m13s
Periodic Merges (24h) / staging-next-25.05 → staging-25.05 (push) Failing after 13m24s
Periodic Merges (24h) / release-25.05 → staging-next-25.05 (push) Failing after 14m28s
37 lines
983 B
Nix
37 lines
983 B
Nix
{
|
|
bundlerEnv,
|
|
ruby,
|
|
lib,
|
|
bundlerUpdateScript,
|
|
}:
|
|
|
|
bundlerEnv rec {
|
|
name = "${pname}-${version}";
|
|
pname = "bundler-audit";
|
|
version = (import ./gemset.nix).bundler-audit.version;
|
|
|
|
inherit ruby;
|
|
gemdir = ./.;
|
|
|
|
passthru.updateScript = bundlerUpdateScript "bundler-audit";
|
|
|
|
meta = with lib; {
|
|
description = "Patch-level verification for Bundler";
|
|
longDescription = ''
|
|
Features:
|
|
- Checks for vulnerable versions of gems in Gemfile.lock.
|
|
- Checks for insecure gem sources (http://).
|
|
- Allows ignoring certain advisories that have been manually worked around.
|
|
- Prints advisory information.
|
|
- Does not require a network connection.
|
|
'';
|
|
homepage = "https://github.com/rubysec/bundler-audit";
|
|
changelog = "https://github.com/rubysec/bundler-audit/blob/v${version}/ChangeLog.md";
|
|
license = licenses.gpl3Plus;
|
|
maintainers = with maintainers; [
|
|
nicknovitski
|
|
];
|
|
platforms = platforms.unix;
|
|
};
|
|
}
|